2026年国际注册信息系统审计师(CISA)资格考试(英文版)强化练习题及答案五
2025/12/21
来源:易考吧
导语
2026年国际注册信息系统审计师(CISA)资格考试(英文版)强化练习题及答案五,更多相关资讯请继续查看易考吧国际内审考试用书
1). What should an IS auditor evaluate FIRST when reviewing an organization′s response to new privacy legislation? ( )
A.Implementation plan for restricting the collection of personal in formation
B.Privacy legislation in other countries that may contain similar requirements
C.Analysis of systems that contain privacy components
D.Operational plan for achieving compliance with the legislation
正确答案:A
2). An organization′s senior management thinks current security controls may be excessive and requests an IS auditor′s advice on how to assess the adequacy of current measures.What is the auditor′s BEST recommendation to management? ( )
A.Downgrade security controls on low-risk systems
B.Introduce automated security monitoring tools
C.Perform correlation analysis between incidents and investments
D.Re-evaluate the organization′s risk and control framework
正确答案:D
3). A distinguishing characteristic of random number sample selection is that e ach:( )
A.Item is selected from a stratum having minimum variability
B.Item’s chance for selection is proportional to its dollar value
C.Item in the population has an equal chance of being selected
D.Stratum in the population has an equal number of items selected
正确答案:C
......
1). What should an IS auditor evaluate FIRST when reviewing an organization′s response to new privacy legislation? ( )
A.Implementation plan for restricting the collection of personal in formation
B.Privacy legislation in other countries that may contain similar requirements
C.Analysis of systems that contain privacy components
D.Operational plan for achieving compliance with the legislation
正确答案:A
2). An organization′s senior management thinks current security controls may be excessive and requests an IS auditor′s advice on how to assess the adequacy of current measures.What is the auditor′s BEST recommendation to management? ( )
A.Downgrade security controls on low-risk systems
B.Introduce automated security monitoring tools
C.Perform correlation analysis between incidents and investments
D.Re-evaluate the organization′s risk and control framework
正确答案:D
3). A distinguishing characteristic of random number sample selection is that e ach:( )
A.Item is selected from a stratum having minimum variability
B.Item’s chance for selection is proportional to its dollar value
C.Item in the population has an equal chance of being selected
D.Stratum in the population has an equal number of items selected
正确答案:C
......
